Medium severity6.1NVD Advisory· Published May 31, 2018· Updated Jun 17, 2026
CVE-2018-10379
CVE-2018-10379
Description
An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 10.5.8, 10.6.x before 10.6.5, and 10.7.x before 10.7.2. The Move Issue feature contained a persistent XSS vulnerability.
Affected products
5- Range: <10.5.8, <10.6.5, <10.7.2
- osv-coords4 versionspkg:apk/chainguard/gitlab-operatorpkg:apk/chainguard/gitlab-operator-chartspkg:apk/chainguard/gitlab-operator-compatpkg:apk/chainguard/gitlab-operator-fips
< 0+ 3 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/104491nvdThird Party AdvisoryVDB Entry
- about.gitlab.com/2018/04/30/security-release-gitlab-10-dot-7-dot-2-released/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.